Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
0
Helpful
1
Replies

Generating SSH key for hardware replacement

richard.bennett
Level 1
Level 1

‎03-12-2007 06:32 AM - edited ‎03-09-2019 05:35 PM

Hi - does anyone have any good practices for hardware replacement where SSH is used? For example a remote engineer replaces a switch, a config file is pushed on from our NMS after some basic configuration & then all seems well - except we need to generate the SSH key with 'crypto key generate' and we can not ssh to the box to do this. We don't really want the onsite engineer to generate the key - can we do this in the config file somehow? Ideally keeping the key the same as before so we don't have a problem with NMS's saying the SSH key has changed.

Also - if the key is generated, is it stored in nvram automatically, or only if you wr mem?

Labels:
0 Helpful
1 Reply 1

suschoud
Cisco Employee
Cisco Employee

‎03-12-2007 10:07 AM

hi rich,

after generating the keys,put in the command:

ca save all

this saves the key to the flash memory and you do n't have to regenerate the keys in case the device reboots.

as far as replacement device is concerned,unfortunately there's no way around and you need to regenerate the keys.

hth,

Sushil

cisco tac.

0 Helpful
Customers Also Viewed These Support Documents